$ rpki-client -vvf rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/65A7D4A0974A11EF961C4937C4F9AE02.roa File: 65A7D4A0974A11EF961C4937C4F9AE02.roa (raw, json) Hash identifier: uFUS3R+R9pN1ZCN/rpeAN2BidcZtMA7vUvv7YeQo5Tw= Subject key identifier: 77:D0:77:CC:11:DB:15:6D:32:09:FE:E6:7E:5B:59:D8:7D:9A:57:A5 Certificate issuer: /CN=A9147609/serialNumber=02E28F9D460511137B21478823A7B48339565212 Certificate serial: 35 Authority key identifier: 02:E2:8F:9D:46:05:11:13:7B:21:47:88:23:A7:B4:83:39:56:52:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AuKPnUYFERN7IUeII6e0gzlWUhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/65A7D4A0974A11EF961C4937C4F9AE02.roa Signing time: Thu 31 Oct 2024 05:38:46 +0000 ROA not before: Thu 31 Oct 2024 05:38:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150334 IP address blocks: 2405:4440:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/AuKPnUYFERN7IUeII6e0gzlWUhI.crl rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/AuKPnUYFERN7IUeII6e0gzlWUhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AuKPnUYFERN7IUeII6e0gzlWUhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147609/serialNumber=02E28F9D460511137B21478823A7B48339565212 Validity Not Before: Oct 31 05:38:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=672317e6-0c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ee:bc:9d:cf:bb:85:0f:60:1b:05:00:22:7f: cb:4c:b2:32:d1:8c:d6:47:3c:34:52:1e:bd:92:0f: 04:22:04:be:c5:08:6e:5d:d1:a2:df:30:86:fd:8b: af:be:39:d9:68:01:d3:73:ee:61:03:e6:06:3a:ff: e6:a2:42:2d:b2:cc:58:c9:ca:e4:a6:ab:09:cd:fd: b5:e0:ae:9b:dd:7b:1f:f5:f7:58:9d:ce:32:47:74: 33:3a:80:8b:f4:04:31:92:84:78:71:0a:72:05:45: ab:03:fe:03:47:09:05:09:58:71:40:c2:4b:f1:11: 8e:37:58:f4:ce:c0:54:58:0e:d8:64:d9:7d:ee:b2: e3:57:eb:56:7d:38:e5:da:fe:77:8a:ef:2a:a5:3b: be:f9:27:fb:ce:8f:8d:57:a5:a4:fa:27:8b:c3:f5: 88:cb:4e:d7:bb:a6:c0:a5:4e:88:a5:ae:99:2f:15: 3b:00:de:28:3c:5b:0d:c8:0b:2f:49:05:29:5c:dd: a6:b7:80:b6:05:c5:9f:69:27:c2:86:74:fb:a8:7c: 5b:53:ed:7a:c9:02:8c:5a:10:a8:56:00:92:ba:4f: f5:9f:33:77:68:e7:61:72:63:d9:cd:a3:8e:80:ba: cf:3f:c5:44:89:d4:c9:d3:30:1c:53:55:96:55:ce: 4c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D0:77:CC:11:DB:15:6D:32:09:FE:E6:7E:5B:59:D8:7D:9A:57:A5 X509v3 Authority Key Identifier: keyid:02:E2:8F:9D:46:05:11:13:7B:21:47:88:23:A7:B4:83:39:56:52:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/AuKPnUYFERN7IUeII6e0gzlWUhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AuKPnUYFERN7IUeII6e0gzlWUhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/65A7D4A0974A11EF961C4937C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:4440:b000::/36 Signature Algorithm: sha256WithRSAEncryption 40:12:11:42:f9:4b:f7:ec:af:6d:e0:2f:f1:1b:bd:30:ff:76: af:47:fb:70:85:30:3d:d0:37:14:8a:f3:c5:2c:a2:d7:b3:44: 78:33:7f:64:55:f7:ed:d4:28:c6:f1:66:6d:51:b1:87:16:90: 20:c0:9e:90:b2:d4:b0:b6:32:62:20:9d:24:70:5a:d7:b1:cf: 61:38:09:32:89:87:a9:df:59:0a:5c:6e:63:54:f3:6e:a7:be: b6:30:76:4f:1b:0f:2a:fa:f8:fa:f7:4d:c7:d4:c6:92:a8:8d: b5:c9:44:ee:ef:a9:f5:fe:23:a7:d7:26:98:fc:9b:4f:79:0d: 75:0f:69:81:e5:74:c0:e7:40:7e:09:d1:f4:52:82:54:9f:d7: 1e:15:92:22:6f:69:2c:5f:e1:2c:9b:71:0b:36:99:76:03:b3: d2:15:1a:8b:50:8f:f7:29:d4:26:91:69:17:a0:b9:85:2d:7f: 56:10:ba:37:eb:55:2f:23:b4:a0:57:c6:0f:b8:5f:80:85:a5: c9:9f:1f:ae:9d:64:c3:77:b4:43:0f:c4:4c:27:a3:a9:c0:7e: 2a:a4:1b:22:bf:ef:67:5c:27:15:71:5b:91:e0:40:0f:76:e7: e1:0a:2e:b9:7e:8c:bb:25:2b:2c:68:0a:9a:29:9f:0d:40:0f: 76:50:8e:ed -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzYwOTExMC8GA1UEBRMoMDJFMjhGOUQ0NjA1MTExMzdCMjE0Nzg4MjNBN0I0ODMz OTU2NTIxMjAeFw0yNDEwMzEwNTM4NDZaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjMxN2U2LTBjN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP7rydz7uFD2AbBQAif8tMsjLRjNZHPDRSHr2SDwQiBL7FCG5d0aLfMIb9i6++ OdloAdNz7mED5gY6/+aiQi2yzFjJyuSmqwnN/bXgrpvdex/191idzjJHdDM6gIv0 BDGShHhxCnIFRasD/gNHCQUJWHFAwkvxEY43WPTOwFRYDthk2X3usuNX61Z9OOXa /neK7yqlO775J/vOj41XpaT6J4vD9YjLTte7psClToilrpkvFTsA3ig8Ww3ICy9J BSlc3aa3gLYFxZ9pJ8KGdPuofFtT7XrJAoxaEKhWAJK6T/WfM3do52FyY9nNo46A us8/xUSJ1MnTMBxTVZZVzkwnAgMBAAGjggKXMIICkzAdBgNVHQ4EFgQUd9B3zBHb FW0yCf7mfltZ2H2aV6UwHwYDVR0jBBgwFoAUAuKPnUYFERN7IUeII6e0gzlWUhIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3NjA5LzYzMkMzMEFFNDQw RTExRTg5MDNEM0E1QkM0RjlBRTAyL0F1S1BuVVlGRVJON0lVZUlJNmUwZ3psV1Vo SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQXVLUG5VWUZFUk43SVVlSUk2ZTBnemxXVWhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzYwOS82MzJDMzBBRTQ0MEUxMUU4OTAzRDNBNUJDNEY5QUUwMi82NUE3RDRBMDk3 NEExMUVGOTYxQzQ5MzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAhBggrBgEFBQcBBwEB/wQS MBAwDgQCAAIwCAMGBCQFRECwMA0GCSqGSIb3DQEBCwUAA4IBAQBAEhFC+Uv37K9t 4C/xG70w/3avR/twhTA90DcUivPFLKLXs0R4M39kVfft1CjG8WZtUbGHFpAgwJ6Q stSwtjJiIJ0kcFrXsc9hOAkyiYep31kKXG5jVPNup762MHZPGw8q+vj6903H1MaS qI21yUTu76n1/iOn1yaY/JtPeQ11D2mB5XTA50B+CdH0UoJUn9ceFZIib2ksX+Es m3ELNpl2A7PSFRqLUI/3KdQmkWkXoLmFLX9WELo361UvI7SgV8YPuF+AhaXJnx+u nWTDd7RDD8RMJ6OpwH4qpBsiv+9nXCcVcVuR4EAPdufhCi65foy7JSssaAqaKZ8N QA92UI7t -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org